Transparent Data Migration Facility (TDMF) configuration/parameter/option values are not specified properly.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-224347 | ZTDM0040 | SV-224347r1041263_rule | Medium |
| Description |
| Transparent Data Migration Facility (TDMF) configuration/parameter/option settings control the security and operational characteristics of product. If these setting values are improperly specified, security and operational controls may be weakened. This exposure may threaten the availability of the product applications, and compromise the confidentiality of system and customer data. |
| STIG | Date |
| z/OS TDMF for ACF2 Security Technical Implementation Guide | 2024-12-16 |
Details
| Check Text (C-26024r1041261_chk) |
| a) Have the the products systems programmer display the configuration/parameters control statements used in the current runing product to define or enable security. b) Verify the following specifications: Parameter Options: VOLUME SECURITY = YES CHECK TARGET EMPTY = YES Session Options: Volume Security is not available. CHECKTarget|CHKTarget c) If (b) above is true, there is no finding. d) If (b) above is untrue, this is a finding |
| Fix Text (F-26012r1041262_fix) |
| The product systems programmer will verify that any configuration/parameters that are required to control the security of the product are properly configured and syntactically correct. See the required parameters below: Parameter Options: VOLUME SECURITY = YES CHECK TARGET EMPTY = YES Session Options: Volume Security is not available. CHECKTarget|CHKTarget NOTE: The ISSO will ensure that volume resource protection is defined to the ACP and access to volumes be given to the appropiate personnel. |